Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/i-2UgTjApIM_BNPcOyHj2UQbi3E.roa
File: i-2UgTjApIM_BNPcOyHj2UQbi3E.roa (raw, json)
Hash identifier: SoRuLWdv9yd+YerWln8hhv6xoS4/7uf1kegSgYiaVlw=
Subject key identifier: 8B:ED:94:81:38:C0:A4:83:3F:04:D3:DC:3B:21:E3:D9:44:1B:8B:71
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 018963C1CC94E3374FC752F63FAF11A12451
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/i-2UgTjApIM_BNPcOyHj2UQbi3E.roa
Signing time: Mon 17 Jul 2023 12:09:52 +0000
ROA not before: Mon 17 Jul 2023 12:09:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31083
IP address blocks: 79.124.4.0/24 maxlen: 24
79.124.5.0/24 maxlen: 24
79.124.6.0/24 maxlen: 24
217.174.146.0/24 maxlen: 24
217.174.152.0/23 maxlen: 24
217.174.151.0/24 maxlen: 24
217.174.148.0/23 maxlen: 24
217.174.147.0/24 maxlen: 24
79.124.17.0/24 maxlen: 24
79.124.16.0/24 maxlen: 24
79.124.14.0/24 maxlen: 24
79.124.13.0/24 maxlen: 24
217.174.155.0/24 maxlen: 24
79.124.22.0/24 maxlen: 24
79.124.31.0/24 maxlen: 24
79.124.44.0/24 maxlen: 24
79.124.52.0/24 maxlen: 24
79.124.64.0/24 maxlen: 24
79.124.63.0/24 maxlen: 24
79.124.66.0/24 maxlen: 24
79.124.67.0/24 maxlen: 24
79.124.65.0/24 maxlen: 24
79.124.76.0/24 maxlen: 24
79.124.75.0/24 maxlen: 24
79.124.84.0/24 maxlen: 24
79.124.90.0/24 maxlen: 24
185.197.152.0/22 maxlen: 22
82.118.243.0/24 maxlen: 24
178.132.87.0/24 maxlen: 24
178.132.86.0/24 maxlen: 24
82.118.229.0/24 maxlen: 24
78.128.62.0/24 maxlen: 24
78.128.60.0/24 maxlen: 24
5.104.175.0/24 maxlen: 24
78.128.78.0/24 maxlen: 24
78.128.76.0/24 maxlen: 24
78.128.77.0/24 maxlen: 24
78.128.81.0/24 maxlen: 24
91.148.148.0/24 maxlen: 24
78.128.1.0/24 maxlen: 24
78.128.8.0/24 maxlen: 24
78.128.9.0/24 maxlen: 24
78.128.7.0/24 maxlen: 24
78.128.6.0/24 maxlen: 24
78.128.43.0/24 maxlen: 24
78.128.42.0/24 maxlen: 24
185.232.156.0/23 maxlen: 23
130.185.232.0/24 maxlen: 24
78.142.32.0/24 maxlen: 24
78.142.51.0/24 maxlen: 24
78.142.47.0/24 maxlen: 24
78.142.58.0/24 maxlen: 24
78.142.56.0/24 maxlen: 24
78.142.57.0/24 maxlen: 24
78.142.63.0/24 maxlen: 24
78.142.62.0/24 maxlen: 24
78.142.59.0/24 maxlen: 24
78.128.118.0/24 maxlen: 24
91.148.168.0/24 maxlen: 24
91.148.167.0/24 maxlen: 24
78.128.126.0/24 maxlen: 24
78.142.6.0/24 maxlen: 24
130.185.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 12:33:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:c1:cc:94:e3:37:4f:c7:52:f6:3f:af:11:a1:24:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jul 17 12:09:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bed948138c0a4833f04d3dc3b21e3d9441b8b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:12:6a:56:26:ef:e7:7a:de:d0:47:3a:58:33:
92:cb:fe:3f:df:25:7f:5f:f0:e9:38:84:1d:f7:79:
50:95:0b:88:ee:2a:f4:4e:18:24:24:bf:65:5e:36:
b8:59:29:15:37:07:0b:ee:5a:de:ba:f1:a7:11:51:
94:0b:5b:db:fc:6c:cf:4d:b7:5d:8a:36:a9:08:97:
12:d1:9f:57:95:df:06:89:80:8f:77:66:11:31:06:
a1:a7:67:38:ad:98:fc:cb:78:4e:82:f6:9b:a3:8a:
2b:a4:60:f2:a7:08:b4:fb:1a:27:7f:75:27:eb:56:
f5:5b:05:79:16:85:60:07:e2:7b:2a:35:c3:07:9e:
2c:21:78:b1:41:f9:50:c6:78:75:4a:d6:07:a7:81:
4c:3c:73:ea:5f:bc:0a:cb:c7:bf:10:7b:77:6e:a7:
0f:d5:98:51:ba:fc:11:04:c5:5a:5a:a4:45:48:bc:
e8:e2:bb:97:4f:1d:f7:c7:56:73:74:cf:9c:e3:57:
d6:d9:27:32:af:ab:74:f3:b7:c9:78:f7:20:8d:5a:
58:ff:7a:e7:d8:e7:bd:54:fe:3c:ac:db:00:33:96:
d0:ac:d8:c5:e4:96:5e:ac:fb:dc:75:3b:d6:a6:01:
66:14:65:84:91:5d:d6:62:eb:43:5b:55:8b:aa:ae:
75:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:ED:94:81:38:C0:A4:83:3F:04:D3:DC:3B:21:E3:D9:44:1B:8B:71
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/i-2UgTjApIM_BNPcOyHj2UQbi3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.175.0/24
78.128.1.0/24
78.128.6.0-78.128.9.255
78.128.42.0/23
78.128.60.0/24
78.128.62.0/24
78.128.76.0-78.128.78.255
78.128.81.0/24
78.128.118.0/24
78.128.126.0/24
78.142.6.0/24
78.142.32.0/24
78.142.47.0/24
78.142.51.0/24
78.142.56.0/22
78.142.62.0/23
79.124.4.0-79.124.6.255
79.124.13.0-79.124.14.255
79.124.16.0/23
79.124.22.0/24
79.124.31.0/24
79.124.44.0/24
79.124.52.0/24
79.124.63.0-79.124.67.255
79.124.75.0-79.124.76.255
79.124.84.0/24
79.124.90.0/24
82.118.229.0/24
82.118.243.0/24
91.148.148.0/24
91.148.167.0-91.148.168.255
130.185.225.0/24
130.185.232.0/24
178.132.86.0/23
185.197.152.0/22
185.232.156.0/23
217.174.146.0-217.174.149.255
217.174.151.0-217.174.153.255
217.174.155.0/24
Signature Algorithm: sha256WithRSAEncryption
74:e3:3f:c6:1a:f1:2d:af:93:d1:b0:ce:f5:5e:03:ff:85:00:
cd:01:03:11:58:74:13:49:6c:3c:a5:e9:8a:f2:ea:db:ad:1a:
ce:86:3b:e3:d2:11:f2:9e:bb:12:62:49:5a:d6:61:e9:78:c0:
93:7c:f1:e7:de:f9:64:40:d5:6b:34:28:19:6b:83:14:0a:0a:
9d:5c:a6:d5:46:56:29:9d:12:ac:d8:1f:87:f2:0e:0c:f6:bd:
21:d7:28:5a:a3:b7:6b:0a:54:90:d5:68:4d:73:92:50:6e:d6:
67:09:9e:70:79:29:e5:83:ea:84:a4:f7:07:b6:15:cf:c6:94:
e5:04:63:98:fc:73:1f:45:40:16:27:5e:7c:96:2a:64:af:6f:
0f:c0:fb:02:00:db:c4:d5:1a:bd:d4:17:d0:b3:fe:b4:f4:0b:
d6:80:d2:46:c1:c4:03:6e:20:64:79:f6:43:83:8d:5f:b8:94:
64:e0:6d:88:1b:15:7a:7e:a2:b1:65:1a:40:06:d7:14:9f:78:
47:7f:e8:6b:ce:f5:9c:05:c7:da:3f:54:5d:96:11:b9:a7:e7:
58:68:1b:b1:4e:fd:a4:a8:95:39:d9:4d:39:ad:1a:61:aa:3b:
cc:7a:4b:3d:56:0f:07:68:b5:00:97:f0:47:42:f1:82:82:01:
ff:ae:f5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:12 2024 by rpki-client on console-ams.rpki-client.org